Assessing Cyber Risk in Cyber-Physical Systems Using the ATT&CK Framework
نویسندگان
چکیده
Autonomous transport is receiving increasing attention, with research and development activities already providing prototype implementations. In this article we focus on Passenger Ships (APS) , which are being considered as a solution for passenger across urban waterways. The ambition of the authors has been to examine safety security implications such Cyber Physical System (CPS) particularly focusing threats that endanger passengers operational environment APS. Accordingly, presents new risk assessment approach based Failure Modes Effects Criticality Analysis (FMECA) enriched selected semantics components MITRE ATT&CK framework, in order utilize encoded common knowledge facilitate expression attacks. Then, proposed demonstrated through conducting communication architecture tailored requirements APSs were earlier work. Moreover, propose group graph theory-based metrics estimating impact identified risks. use method resulted identification risks their corresponding countermeasures, addition identifying limited existing mitigation mechanisms. benefits comprehensive, atomic, descriptive nature threats, reduce need expert judgment, granular estimation bias. All these features provided semi-automated required effort collectively argued enrich design-level processes an updatable industry threat model standard, namely ATT&CK.
منابع مشابه
Autonomic Computing Framework for Cyber-Physical Systems
The more systems are becoming to be controlled by computing devices. Cyber-Physical Systems (CPS) are expected to be an alternative to the traditional control systems. However, there are several problems to adopt CPS since they cannot adapt to changes in environment and system failures. Autonomic computing concept is widely applied to enable systems to adapt changes at runtime. In this paper we...
متن کاملA Framework for Developing Cyber-Physical Systems
Cyber physical systems (CPSs) are pervasive in our daily life from mobile phones to auto driving cars. CPSs are inherently complex due to their sophisticated behaviors and thus difficult to build. In this paper, we propose a framework to develop CPSs based on a model driven approach with quality assurance throughout the development process. An agent-oriented approach is used to model individual...
متن کاملUsing Multicore Architectures in Cyber-Physical Systems
Introduction The demand for higher performance computing platforms has dramatically increased during the last decade due to the continuous feature enhancement process. For instance, in automotive systems new safety features like `night view assist’ and `automatic emergency breaking’ require the fusion of sensor data, video processing and real-time warnings when an obstacle is detected on the ro...
متن کاملDependable Cyber-Physical Systems
CPS (Cyber-Physical Systems) enable a new class of applications that perceive their surroundings using raw data from sensors, monitor the timing of dynamic processes, and control the physical environment. Since failures and misbehaviors in application domains such as cars, medical devices, nuclear power plants, etc., may cause significant damage to life and/or property, CPS need to be safe and ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: ACM transactions on privacy and security
سال: 2023
ISSN: ['2471-2574', '2471-2566']
DOI: https://doi.org/10.1145/3571733